From 8fa61605baef706c6d3b6c7020a2bd6454b46a03 Mon Sep 17 00:00:00 2001
From: d33tah <d33tah@e0a8ed71-7df4-0310-8962-fdc924857419>
Date: Sun, 15 Sep 2013 20:17:03 +0000
Subject: [PATCH] Reorder the checks a bit.

---
 ncat/scripts/httpd.lua | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/ncat/scripts/httpd.lua b/ncat/scripts/httpd.lua
index ad11cf8a6..4aab5b737 100644
--- a/ncat/scripts/httpd.lua
+++ b/ncat/scripts/httpd.lua
@@ -182,13 +182,14 @@ function is_path_valid(resource)
      --remove the beginning slash
     resource = string.sub(resource, 2, string.len(resource))
 
-    --if it starts with a dot or a slash or a backslash, forbid any acccess to it.
-    first_char = resource:sub(0, 1)
     --(Windows drive names are not welcome too.)
     if resource:match("^([a-zA-Z]):") then
         return false
     end
 
+    --if it starts with a dot or a slash or a backslash, forbid any acccess to it.
+    first_char = resource:sub(0, 1)
+
     if first_char == "." then
         return false
     end